• Home

  • Documents

  • Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options...
9
Mocking HTTP APIs With Burp 2019-11-08 Shea Polansky https://polansky.co @0x5ca1e5 Shea Polansky

Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

  • Upload
    others

  • View
    6

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Mocking HTTP APIs With Burp

2019-11-08Shea Polanskyhttps://polansky.co@0x5ca1e5

Shea Polansky

Page 2: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Motivation

• Simple HTTP Response Mocking– "isAdmin": false → "isAdmin": true

• Complex Application Manipulation– When built-in regex rules won’t cut it

Page 3: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Example Use Case: DRM BypassGET /api/license?uid=<…>

{"license":

base64

"signatures":

,

{"cert": "…","CA": "…","signature":

}

base64

{"uid": <…>, "user": "…", "expiration": "…", …

}

base64

, …<pkcs7 signature data>base64

}

Page 4: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Example Use Case: DRM Bypass

• This protocol is wack• App requires response in <2s• Want other calls to go through as normal• Normally would have to write a custom Burp

plugin• With this, just need a quick python script!

Page 5: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Burp HTTP Mock Extension

• Originally by Michal Dardas• I added dynamic mocking• Matches requests by regex, either lets

through or transparently redirects to static/dynamic mock

Page 6: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Demo!

Page 7: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Demo!

Page 8: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Installation

• In the BApp Store– Search “HTTP Mock”

• From my GitHub– Slightly faster updates– https://github.com/ise-spolansky/BurpHttpMock

Page 9: Mocking HTTP APIs With Burp - Shea Polansky · Burp Intruder Repeater Window Help Repeater Options URL Burp Suite Community Edition v1.7.35 - Temporary Project Alerts it H u b—

Questions?

GitHub PortSwigger BApp Store

Thank you!2019-11-08Shea Polanskyhttps://polansky.co@0x5ca1e5

https://github.com/ise-spolansky/BurpHttpMock
https://portswigger.net/bappstore/42680f96fc214513bc5211b3f25fd98b

Burp Scanner Help

Burp Scanner Help

Documents
Polansky - Open Fracture - FINAL

Polansky - Open Fracture - FINAL

Documents
Introduction to burp suite

Introduction to burp suite

Software
TUTORIAL B - Flannel Burp Cloth

TUTORIAL B - Flannel Burp Cloth

Documents
Bath Burp Issue 5

Bath Burp Issue 5

Documents
Pentesting Using Burp Suite

Pentesting Using Burp Suite

Documents
Saluting the Salubrious Burp: The Burp that Healed, by Pieter Uys

Saluting the Salubrious Burp: The Burp that Healed, by Pieter Uys

Documents
Kyle Polansky Chipotle Analysis

Kyle Polansky Chipotle Analysis

Food
Larry Polansky solo piano (and invited speakers) for sarah cahilleamusic.dartmouth.edu/~larry/scores2/bmidbar/bmidbar.pdf · 2018. 4. 24. · rbdmb (B’midbar) (Numbers) Larry Polansky

Larry Polansky solo piano (and invited speakers) for sarah cahilleamusic.dartmouth.edu/~larry/scores2/bmidbar/bmidbar.pdf · 2018. 4. 24. · rbdmb (B’midbar) (Numbers) Larry Polansky

Documents
Automation of Web Application Scanning with Burp …...Why Burp Suite? 5 Burp Suite - GUI proxy server for manual analyse of HTTP and Websocket protocols › Everyone in our team uses

Automation of Web Application Scanning with Burp …...Why Burp Suite? 5 Burp Suite - GUI proxy server for manual analyse of HTTP and Websocket protocols › Everyone in our team uses

Documents
Pen Testing With Burp Suite

Pen Testing With Burp Suite

Documents
Burp Suite

Burp Suite

Documents
An NCC Group Publication The Pentester’s Guide to Akamai · Figure 6: BURP Suite Pro Repeater being used to craft a HTTP request to the origin. However, most of the time attempting

An NCC Group Publication The Pentester’s Guide to Akamai · Figure 6: BURP Suite Pro Repeater being used to craft a HTTP request to the origin. However, most of the time attempting

Documents
FINAL JULY-AUGUST TOC - Orthodox Church in Americafiles.oca.org/TOC/2006-JULY-AUGUST.pdfProtodeacon Nicholas Polansky EAST MEADOW, NY – Protodeacon Nicholas Polansky fell asleep

FINAL JULY-AUGUST TOC - Orthodox Church in Americafiles.oca.org/TOC/2006-JULY-AUGUST.pdfProtodeacon Nicholas Polansky EAST MEADOW, NY – Protodeacon Nicholas Polansky fell asleep

Documents
Burp Suite Pro - Hack In Paris · Burp Suite Pro Real-life tips & tricks Nicolas Grégoire. ... Magic combo: Nikto Burp FuzzDB ... Misc Custom Logger, Burp Notes,

Burp Suite Pro - Hack In Paris · Burp Suite Pro Real-life tips & tricks Nicolas Grégoire. ... Magic combo: Nikto Burp FuzzDB ... Misc Custom Logger, Burp Notes,

Documents
Three excellent ideas polansky Seattle, March 2009

Three excellent ideas polansky Seattle, March 2009

Documents
Bath Burp Issue 15

Bath Burp Issue 15

Documents
community.mis.temple.edu...Burp Suite Free Edition v1.7.17 - Window, Temporary Project project optons o Splder .ts hlSt 27 00 x x86 64, O *Ions Repeater HTTP history webs oc st to

community.mis.temple.edu...Burp Suite Free Edition v1.7.17 - Window, Temporary Project project optons o Splder .ts hlSt 27 00 x x86 64, O *Ions Repeater HTTP history webs oc st to

Documents
Your Personal Horoscope 2014 M Polansky Joseph PDF

Your Personal Horoscope 2014 M Polansky Joseph PDF

Documents
Burp Suite Starter

Burp Suite Starter

Technology
Burp Zeronights workshop

Burp Zeronights workshop

Technology
Zap vs burp

Zap vs burp

Software
REMOTE CONTROL by Cynthia Polansky

REMOTE CONTROL by Cynthia Polansky

Documents
Cusomizing Burp Suite - Getting the Most out of Burp Extensions

Cusomizing Burp Suite - Getting the Most out of Burp Extensions

Technology
Bath Burp Issue 6

Bath Burp Issue 6

Documents
Extending Burp with Python

Extending Burp with Python

Documents
Burp Suite Extension Writing Workshop - Devils Lab Extension Writing... · » Introduction to Burp Suite » Burp features: • scoping, proxy settings, repeater mode and other options

Burp Suite Extension Writing Workshop - Devils Lab Extension Writing... · » Introduction to Burp Suite » Burp features: • scoping, proxy settings, repeater mode and other options

Documents
Burp N Baby

Burp N Baby

Design
Air Conditioning Repairs Waco, TX - POLANSKY HEATING & AIR

Air Conditioning Repairs Waco, TX - POLANSKY HEATING & AIR

Services
Bath Burp Issue 10

Bath Burp Issue 10

Documents